MyPass 175Protect

07-20-2011, 03:50 AM

Error Code :
The Function Is 175PT Error Function ,Push ErrorCode & CALL to The Function ,so modified the head to C3 90(retn&nop)
10012CA0 6A FF PUSH -1
10012CA2 68 28CC0310 PUSH 175Prote.1003CC28
10012CA7 64:A1 00000000 MOV EAX,DWORD PTR FS:[0]
10012CAD 50 PUSH EAX
10012CAE 83EC 0C SUB ESP,0C
10012CB1 A1 A85D0510 MOV EAX,DWORD PTR DS:[10055DA8]
10012CB6 33C4 XOR EAX,ESP
10012CB8 50 PUSH EAX
10012CB9 8D4424 10 LEA EAX,DWORD PTR SS:[ESP+10]
10012CBD 64:A3 00000000 MOV DWORD PTR FS:[0],EAX
10012CC3 8A4424 20 MOV AL,BYTE PTR SS:[ESP+20]
10012CC7 68 60B8C78C PUSH 8CC7B860
10012CCC 8D4C24 0A LEA ECX,DWORD PTR SS:[ESP+A]
10012CD0 A2 0FA71110 MOV BYTE PTR DS:[1011A70F],AL
10012CD5 E8 A6F6FFFF CALL 175Prote.10012380
10012CDA 6A 00 PUSH 0
10012CDC 6A 01 PUSH 1
10012CDE 8D4C24 28 LEA ECX,DWORD PTR SS:[ESP+28]
10012CE2 51 PUSH ECX
10012CE3 50 PUSH EAX
10012CE4 B9 20A71110 MOV ECX,175Prote.1011A720
10012CE9 C74424 28 00000000 MOV DWORD PTR SS:[ESP+28],0
10012CF1 E8 BAE9FFFF CALL 175Prote.100116B0
10012CF6 8B4C24 10 MOV ECX,DWORD PTR SS:[ESP+10]
10012CFA 64:890D 00000000 MOV DWORD PTR FS:[0],ECX
10012D01 59 POP ECX
10012D02 83C4 18 ADD ESP,18
10012D05 C3 RETN

The Function Is .text CRC32 cmp function modified the Funtcion head to mov eax,0&rern

ED0 83EC 30 SUB ESP,30
10013ED3 A1 A85D0510 MOV EAX,DWORD PTR DS:[10055DA8]
10013ED8 33C4 XOR EAX,ESP
10013EDA 894424 2C MOV DWORD PTR SS:[ESP+2C],EAX
10013EDE 56 PUSH ESI
10013EDF 8BF1 MOV ESI,ECX
10013EE1 8B06 MOV EAX,DWORD PTR DS:[ESI]
10013EE3 85C0 TEST EAX,EAX
10013EE5 74 3B JE SHORT 175Prote.10013F22
10013EE7 8B56 04 MOV EDX,DWORD PTR DS:[ESI+4]
10013EEA 8D4C24 04 LEA ECX,DWORD PTR SS:[ESP+4]
10013EEE 51 PUSH ECX
10013EEF 68 04800000 PUSH 8004
10013EF4 52 PUSH EDX
10013EF5 50 PUSH EAX
10013EF6 E8 C506FFFF CALL 175Prote.100045C0
10013EFB 83C6 08 ADD ESI,8
10013EFE 8D4424 14 LEA EAX,DWORD PTR SS:[ESP+14]
10013F02 56 PUSH ESI
10013F03 50 PUSH EAX
10013F04 E8 AF610100 CALL 175Prote.1002A0B8
10013F09 83C4 18 ADD ESP,18
10013F0C 85C0 TEST EAX,EAX
10013F0E 75 12 JNZ SHORT 175Prote.10013F22
10013F10 B0 01 MOV AL,1
10013F12 5E POP ESI
10013F13 8B4C24 2C MOV ECX,DWORD PTR SS:[ESP+2C]
10013F17 33CC XOR ECX,ESP
10013F19 E8 E43A0100 CALL 175Prote.10027A02
10013F1E 83C4 30 ADD ESP,30
10013F21 C3 RETN
10013F22 8B4C24 30 MOV ECX,DWORD PTR SS:[ESP+30]
10013F26 5E POP ESI
10013F27 33CC XOR ECX,ESP
10013F29 32C0 XOR AL,AL
10013F2B E8 D23A0100 CALL 175Prote.10027A02
10013F30 83C4 30 ADD ESP,30
10013F33 C3 RETN

But Wall is Not Ues??Go To Engine [EngineList]+50h address Hookd to 175Protect.dll ....
Code:
xxxxx.....
1000C85F . 74 16 je short 1000C877
1000C861 . 8B06 mov eax, dword ptr [esi]
1000C863 . 50 push eax
1000C864 . B9 48BA0E10 mov ecx, 100EBA48
1000C869 . E8 82DFFFFF call 1000A7F0
1000C86E . 8BC8 mov ecx, eax
1000C870 . E8 3B86FFFF call 10004EB0
1000C875 . EB 14 jmp short 1000C88B
1000C877 > 8B0E mov ecx, dword ptr [esi]
1000C879 . 51 push ecx
1000C87A . B9 48BA0E10 mov ecx, 100EBA48
1000C87F . E8 6CDFFFFF call 1000A7F0
1000C884 . C680 690C0000>mov byte ptr [eax+C69], 0
1000C88B > 8B15 708D0510 mov edx, dword ptr [10058D70]
1000C891 . 8B02 mov eax, dword ptr [edx]
1000C893 . 3906 cmp dword ptr [esi], eax
1000C895 . 0F84 1C020000 je 1000CAB7
1000C89B . D905 00110410 fld dword ptr [10041100]
1000C8A1 . 8D4C24 04 lea ecx, dword ptr [esp+4]
1000C8A5 . 51 push ecx
1000C8A6 . 51 push ecx
1000C8A7 . D91C24 fstp dword ptr [esp]
1000C8AA . 50 push eax
1000C8AB . B9 48BA0E10 mov ecx, 100EBA48
1000C8B0 . E8 3BDFFFFF call 1000A7F0
1000C8B5 . D980 100C0000 fld dword ptr [eax+C10]
1000C8BB . 05 100C0000 add eax, 0C10
1000C8C0 . 83EC 0C sub esp, 0C
1000C8C3 . 8BCC mov ecx, esp
1000C8C5 . D919 fstp dword ptr [ecx]
1000C8C7 . 83EC 0C sub esp, 0C
1000C8CA . D940 04 fld dword ptr [eax+4]
1000C8CD . D959 04 fstp dword ptr [ecx+4]
1000C8D0 . D940 08 fld dword ptr [eax+8]
1000C8D3 . D959 08 fstp dword ptr [ecx+8]
1000C8D6 . A1 708D0510 mov eax, dword ptr [10058D70]
1000C8DB . D980 540B0000 fld dword ptr [eax+B54]
1000C8E1 . 05 540B0000 add eax, 0B54
1000C8E6 . 8BCC mov ecx, esp
1000C8E8 . D919 fstp dword ptr [ecx]
1000C8EA . D940 04 fld dword ptr [eax+4]
1000C8ED . D959 04 fstp dword ptr [ecx+4]
1000C8F0 . D940 08 fld dword ptr [eax+8]
1000C8F3 . D959 08 fstp dword ptr [ecx+8]
1000C8F6 . E8 259CFFFF call 10006520
1000C8FB . D9EE fldz
1000C8FD . 83C4 20 add esp, 20
1000C900 . D9C0 fld st
1000C902 . D94424 04 fld dword ptr [esp+4]
1000C906 . DDE1 fucom st(1)
1000C908 . DFE0 fstsw ax
1000C90A . DDD9 fstp st(1)
1000C90C . F6C4 44 test ah, 44
1000C90F . D94424 0C fld dword ptr [esp+C]
1000C913 . D94424 08 fld dword ptr [esp+8]
1000C917 . 7A 18 jpe short 1000C931
1000C919 . D9C3 fld st(3)
1000C91B . DDE9 fucomp st(1)
1000C91D . DFE0 fstsw ax
1000C91F . F6C4 44 test ah, 44
1000C922 . 7A 0D jpe short 1000C931
1000C924 . D9CB fxch st(3)
1000C926 . DDE9 fucomp st(1)
1000C928 . DFE0 fstsw ax
1000C92A . F6C4 44 test ah, 44
1000C92D . 7B 73 jpo short 1000C9A2
1000C92F . EB 02 jmp short 1000C933
1000C931 > DDDB fstp st(3)
1000C933 > D9C9 fxch st(1)
1000C935 . 8D86 10040000 lea eax, dword ptr [esi+410]
1000C93B . D996 480B0000 fst dword ptr [esi+B48]
1000C941 . B9 40000000 mov ecx, 40
1000C946 . D956 18 fst dword ptr [esi+18]
1000C949 . D996 C0020000 fst dword ptr [esi+2C0]
1000C94F . D996 6C010000 fst dword ptr [esi+16C]
1000C955 . D9CA fxch st(2)
1000C957 . D996 4C0B0000 fst dword ptr [esi+B4C]
1000C95D . D956 1C fst dword ptr [esi+1C]
1000C960 . D996 C4020000 fst dword ptr [esi+2C4]
1000C966 . D996 70010000 fst dword ptr [esi+170]
1000C96C . D9C9 fxch st(1)
1000C96E . D996 500B0000 fst dword ptr [esi+B50]
1000C974 . D956 20 fst dword ptr [esi+20]
1000C977 . D996 C8020000 fst dword ptr [esi+2C8]
1000C97D . D996 74010000 fst dword ptr [esi+174]
1000C983 . EB 06 jmp short 1000C98B
1000C985 > D9C9 fxch st(1)
1000C987 . D9CA fxch st(2)
1000C989 . D9C9 fxch st(1)
1000C98B > D9CA fxch st(2)
1000C98D . 83C0 1C add eax, 1C
1000C990 . 83E9 01 sub ecx, 1
1000C993 . D950 E0 fst dword ptr [eax-20]
1000C996 . D9C9 fxch st(1)
1000C998 . D950 E4 fst dword ptr [eax-1C]
1000C99B . D9CA fxch st(2)
1000C99D . D950 E8 fst dword ptr [eax-18]
1000C9A0 .^ 75 E3 jnz short 1000C985
1000C9A2 > A1 A0880510 mov eax, dword ptr [100588A0]
1000C9A7 . DDD9 fstp st(1)
1000C9A9 . 85C0 test eax, eax
1000C9AB . DDD8 fstp st
1000C9AD . DDD8 fstp st
1000C9AF . 74 1C je short 1000C9CD
1000C9B1 . DD00 fld qword ptr [eax]
1000C9B3 . 8B16 mov edx, dword ptr [esi]
1000C9B5 . 83EC 08 sub esp, 8
1000C9B8 . DD1C24 fstp qword ptr [esp]
1000C9BB . 52 push edx
1000C9BC . B9 48BA0E10 mov ecx, 100EBA48
1000C9C1 . E8 2ADEFFFF call 1000A7F0
1000C9C6 . 8BC8 mov ecx, eax
1000C9C8 . E8 1389FFFF call 100052E0
1000C9CD > 8B06 mov eax, dword ptr [esi]
1000C9CF . 50 push eax
1000C9D0 . B9 48BA0E10 mov ecx, 100EBA48
1000C9D5 . E8 16DEFFFF call 1000A7F0
1000C9DA . 8B48 14 mov ecx, dword ptr [eax+14]
1000C9DD . 3B0D C08D0510 cmp ecx, dword ptr [10058DC0]
1000C9E3 . 0F84 AA000000 je 1000CA93
1000C9E9 . 8B16 mov edx, dword ptr [esi]
1000C9EB . 52 push edx
1000C9EC . B9 48BA0E10 mov ecx, 100EBA48
1000C9F1 . E8 FADDFFFF call 1000A7F0
1000C9F6 . D980 980B0000 fld dword ptr [eax+B98]
1000C9FC . 8B0E mov ecx, dword ptr [esi]
1000C9FE . 05 980B0000 add eax, 0B98
1000CA03 . 8D0C49 lea ecx, dword ptr [ecx+ecx*2]
1000CA06 . D91C8D 40EA0E>fstp dword ptr [ecx*4+100EEA40]
1000CA0D . 8B16 mov edx, dword ptr [esi]
1000CA0F . 52 push edx
1000CA10 . B9 48BA0E10 mov ecx, 100EBA48
1000CA15 . E8 D6DDFFFF call 1000A7F0
1000CA1A . D980 9C0B0000 fld dword ptr [eax+B9C]
1000CA20 . 8B0E mov ecx, dword ptr [esi]
1000CA22 . 05 980B0000 add eax, 0B98
1000CA27 . 8D0C49 lea ecx, dword ptr [ecx+ecx*2]
1000CA2A . D91C8D 44EA0E>fstp dword ptr [ecx*4+100EEA44]
1000CA31 . 8B16 mov edx, dword ptr [esi]
1000CA33 . 52 push edx
1000CA34 . B9 48BA0E10 mov ecx, 100EBA48
1000CA39 . E8 B2DDFFFF call 1000A7F0
1000CA3E . D980 A00B0000 fld dword ptr [eax+BA0]
1000CA44 . 8B0E mov ecx, dword ptr [esi]
1000CA46 . 05 980B0000 add eax, 0B98
1000CA4B . 8D0C49 lea ecx, dword ptr [ecx+ecx*2]
1000CA4E . D91C8D 48EA0E>fstp dword ptr [ecx*4+100EEA48]
1000CA55 . 8B16 mov edx, dword ptr [esi]
1000CA57 . 52 push edx
1000CA58 . E8 73FBFFFF call 1000C5D0
1000CA5D . 83C4 04 add esp, 4
1000CA60 . 84C0 test al, al
1000CA62 . 75 09 jnz short 1000CA6D
1000CA64 . 5E pop esi
1000CA65 . 83C4 0C add esp, 0C
1000CA68 .^ E9 639AFFFF jmp 100064D0
1000CA6D > 8B06 mov eax, dword ptr [esi]
1000CA6F . D9EE fldz
1000CA71 . 8D0440 lea eax, dword ptr [eax+eax*2]
1000CA74 . D91485 40EA0E>fst dword ptr [eax*4+100EEA40]
1000CA7B . 8B06 mov eax, dword ptr [esi]
1000CA7D . 8D0C40 lea ecx, dword ptr [eax+eax*2]
1000CA80 . D9148D 44EA0E>fst dword ptr [ecx*4+100EEA44]
1000CA87 . 8B06 mov eax, dword ptr [esi]
1000CA89 . 8D1440 lea edx, dword ptr [eax+eax*2]
1000CA8C . D91C95 48EA0E>fstp dword ptr [edx*4+100EEA48]
1000CA93 > 8B06 mov eax, dword ptr [esi]
1000CA95 . 50 push eax
1000CA96 . B9 48BA0E10 mov ecx, 100EBA48
1000CA9B . E8 50DDFFFF call 1000A7F0
1000CAA0 . 83C0 50 add eax, 50
1000CAA3 . 50 push eax
1000CAA4 . 6A 00 push 0
1000CAA6 . E8 8596FFFF call 10006130
1000CAAB . 83C4 08 add esp, 8
1000CAAE . 5E pop esi
1000CAAF . 83C4 0C add esp, 0C
1000CAB2 .^ E9 199AFFFF jmp 100064D0
1000CAB7 > 5E pop esi
1000CAB8 . 83C4 0C add esp, 0C
1000CABB .^ E9 F099FFFF jmp 100064B0
1000CAC0 . E8 2B9AFFFF call 100064F0
1000CAC5 . A3 BC880510 mov dword ptr [100588BC], eax
1000CACA . E8 61FDFFFF call 1000C830
1000CACF . A1 BC880510 mov eax, dword ptr [100588BC]
1000CAD4 . FF25 A08A0510 jmp dword ptr [10058AA0]

MyTest two Address is :
1000CA62 . /75 09 jnz short 1000CA6D

or

1000C9E3 . /0F84 AA000000 je 1000CA93

modified to jmp

ok 175Protect not Error Code & not CRC32 ERROR & Wall Hack

Now restore the engine to make some of the plug-in available link

07-20-2011, 03:50 AM	#1
201724 Guest Posts: n/a	MyPass 175Protect Error Code : The Function Is 175PT Error Function ,Push ErrorCode & CALL to The Function ,so modified the head to C3 90(retn&nop) 10012CA0 6A FF PUSH -1 10012CA2 68 28CC0310 PUSH 175Prote.1003CC28 10012CA7 64:A1 00000000 MOV EAX,DWORD PTR FS:[0] 10012CAD 50 PUSH EAX 10012CAE 83EC 0C SUB ESP,0C 10012CB1 A1 A85D0510 MOV EAX,DWORD PTR DS:[10055DA8] 10012CB6 33C4 XOR EAX,ESP 10012CB8 50 PUSH EAX 10012CB9 8D4424 10 LEA EAX,DWORD PTR SS:[ESP+10] 10012CBD 64:A3 00000000 MOV DWORD PTR FS:[0],EAX 10012CC3 8A4424 20 MOV AL,BYTE PTR SS:[ESP+20] 10012CC7 68 60B8C78C PUSH 8CC7B860 10012CCC 8D4C24 0A LEA ECX,DWORD PTR SS:[ESP+A] 10012CD0 A2 0FA71110 MOV BYTE PTR DS:[1011A70F],AL 10012CD5 E8 A6F6FFFF CALL 175Prote.10012380 10012CDA 6A 00 PUSH 0 10012CDC 6A 01 PUSH 1 10012CDE 8D4C24 28 LEA ECX,DWORD PTR SS:[ESP+28] 10012CE2 51 PUSH ECX 10012CE3 50 PUSH EAX 10012CE4 B9 20A71110 MOV ECX,175Prote.1011A720 10012CE9 C74424 28 00000000 MOV DWORD PTR SS:[ESP+28],0 10012CF1 E8 BAE9FFFF CALL 175Prote.100116B0 10012CF6 8B4C24 10 MOV ECX,DWORD PTR SS:[ESP+10] 10012CFA 64:890D 00000000 MOV DWORD PTR FS:[0],ECX 10012D01 59 POP ECX 10012D02 83C4 18 ADD ESP,18 10012D05 C3 RETN The Function Is .text CRC32 cmp function modified the Funtcion head to mov eax,0&rern ED0 83EC 30 SUB ESP,30 10013ED3 A1 A85D0510 MOV EAX,DWORD PTR DS:[10055DA8] 10013ED8 33C4 XOR EAX,ESP 10013EDA 894424 2C MOV DWORD PTR SS:[ESP+2C],EAX 10013EDE 56 PUSH ESI 10013EDF 8BF1 MOV ESI,ECX 10013EE1 8B06 MOV EAX,DWORD PTR DS:[ESI] 10013EE3 85C0 TEST EAX,EAX 10013EE5 74 3B JE SHORT 175Prote.10013F22 10013EE7 8B56 04 MOV EDX,DWORD PTR DS:[ESI+4] 10013EEA 8D4C24 04 LEA ECX,DWORD PTR SS:[ESP+4] 10013EEE 51 PUSH ECX 10013EEF 68 04800000 PUSH 8004 10013EF4 52 PUSH EDX 10013EF5 50 PUSH EAX 10013EF6 E8 C506FFFF CALL 175Prote.100045C0 10013EFB 83C6 08 ADD ESI,8 10013EFE 8D4424 14 LEA EAX,DWORD PTR SS:[ESP+14] 10013F02 56 PUSH ESI 10013F03 50 PUSH EAX 10013F04 E8 AF610100 CALL 175Prote.1002A0B8 10013F09 83C4 18 ADD ESP,18 10013F0C 85C0 TEST EAX,EAX 10013F0E 75 12 JNZ SHORT 175Prote.10013F22 10013F10 B0 01 MOV AL,1 10013F12 5E POP ESI 10013F13 8B4C24 2C MOV ECX,DWORD PTR SS:[ESP+2C] 10013F17 33CC XOR ECX,ESP 10013F19 E8 E43A0100 CALL 175Prote.10027A02 10013F1E 83C4 30 ADD ESP,30 10013F21 C3 RETN 10013F22 8B4C24 30 MOV ECX,DWORD PTR SS:[ESP+30] 10013F26 5E POP ESI 10013F27 33CC XOR ECX,ESP 10013F29 32C0 XOR AL,AL 10013F2B E8 D23A0100 CALL 175Prote.10027A02 10013F30 83C4 30 ADD ESP,30 10013F33 C3 RETN But Wall is Not Ues??Go To Engine [EngineList]+50h address Hookd to 175Protect.dll .... Code: xxxxx..... 1000C85F . 74 16 je short 1000C877 1000C861 . 8B06 mov eax, dword ptr [esi] 1000C863 . 50 push eax 1000C864 . B9 48BA0E10 mov ecx, 100EBA48 1000C869 . E8 82DFFFFF call 1000A7F0 1000C86E . 8BC8 mov ecx, eax 1000C870 . E8 3B86FFFF call 10004EB0 1000C875 . EB 14 jmp short 1000C88B 1000C877 > 8B0E mov ecx, dword ptr [esi] 1000C879 . 51 push ecx 1000C87A . B9 48BA0E10 mov ecx, 100EBA48 1000C87F . E8 6CDFFFFF call 1000A7F0 1000C884 . C680 690C0000>mov byte ptr [eax+C69], 0 1000C88B > 8B15 708D0510 mov edx, dword ptr [10058D70] 1000C891 . 8B02 mov eax, dword ptr [edx] 1000C893 . 3906 cmp dword ptr [esi], eax 1000C895 . 0F84 1C020000 je 1000CAB7 1000C89B . D905 00110410 fld dword ptr [10041100] 1000C8A1 . 8D4C24 04 lea ecx, dword ptr [esp+4] 1000C8A5 . 51 push ecx 1000C8A6 . 51 push ecx 1000C8A7 . D91C24 fstp dword ptr [esp] 1000C8AA . 50 push eax 1000C8AB . B9 48BA0E10 mov ecx, 100EBA48 1000C8B0 . E8 3BDFFFFF call 1000A7F0 1000C8B5 . D980 100C0000 fld dword ptr [eax+C10] 1000C8BB . 05 100C0000 add eax, 0C10 1000C8C0 . 83EC 0C sub esp, 0C 1000C8C3 . 8BCC mov ecx, esp 1000C8C5 . D919 fstp dword ptr [ecx] 1000C8C7 . 83EC 0C sub esp, 0C 1000C8CA . D940 04 fld dword ptr [eax+4] 1000C8CD . D959 04 fstp dword ptr [ecx+4] 1000C8D0 . D940 08 fld dword ptr [eax+8] 1000C8D3 . D959 08 fstp dword ptr [ecx+8] 1000C8D6 . A1 708D0510 mov eax, dword ptr [10058D70] 1000C8DB . D980 540B0000 fld dword ptr [eax+B54] 1000C8E1 . 05 540B0000 add eax, 0B54 1000C8E6 . 8BCC mov ecx, esp 1000C8E8 . D919 fstp dword ptr [ecx] 1000C8EA . D940 04 fld dword ptr [eax+4] 1000C8ED . D959 04 fstp dword ptr [ecx+4] 1000C8F0 . D940 08 fld dword ptr [eax+8] 1000C8F3 . D959 08 fstp dword ptr [ecx+8] 1000C8F6 . E8 259CFFFF call 10006520 1000C8FB . D9EE fldz 1000C8FD . 83C4 20 add esp, 20 1000C900 . D9C0 fld st 1000C902 . D94424 04 fld dword ptr [esp+4] 1000C906 . DDE1 fucom st(1) 1000C908 . DFE0 fstsw ax 1000C90A . DDD9 fstp st(1) 1000C90C . F6C4 44 test ah, 44 1000C90F . D94424 0C fld dword ptr [esp+C] 1000C913 . D94424 08 fld dword ptr [esp+8] 1000C917 . 7A 18 jpe short 1000C931 1000C919 . D9C3 fld st(3) 1000C91B . DDE9 fucomp st(1) 1000C91D . DFE0 fstsw ax 1000C91F . F6C4 44 test ah, 44 1000C922 . 7A 0D jpe short 1000C931 1000C924 . D9CB fxch st(3) 1000C926 . DDE9 fucomp st(1) 1000C928 . DFE0 fstsw ax 1000C92A . F6C4 44 test ah, 44 1000C92D . 7B 73 jpo short 1000C9A2 1000C92F . EB 02 jmp short 1000C933 1000C931 > DDDB fstp st(3) 1000C933 > D9C9 fxch st(1) 1000C935 . 8D86 10040000 lea eax, dword ptr [esi+410] 1000C93B . D996 480B0000 fst dword ptr [esi+B48] 1000C941 . B9 40000000 mov ecx, 40 1000C946 . D956 18 fst dword ptr [esi+18] 1000C949 . D996 C0020000 fst dword ptr [esi+2C0] 1000C94F . D996 6C010000 fst dword ptr [esi+16C] 1000C955 . D9CA fxch st(2) 1000C957 . D996 4C0B0000 fst dword ptr [esi+B4C] 1000C95D . D956 1C fst dword ptr [esi+1C] 1000C960 . D996 C4020000 fst dword ptr [esi+2C4] 1000C966 . D996 70010000 fst dword ptr [esi+170] 1000C96C . D9C9 fxch st(1) 1000C96E . D996 500B0000 fst dword ptr [esi+B50] 1000C974 . D956 20 fst dword ptr [esi+20] 1000C977 . D996 C8020000 fst dword ptr [esi+2C8] 1000C97D . D996 74010000 fst dword ptr [esi+174] 1000C983 . EB 06 jmp short 1000C98B 1000C985 > D9C9 fxch st(1) 1000C987 . D9CA fxch st(2) 1000C989 . D9C9 fxch st(1) 1000C98B > D9CA fxch st(2) 1000C98D . 83C0 1C add eax, 1C 1000C990 . 83E9 01 sub ecx, 1 1000C993 . D950 E0 fst dword ptr [eax-20] 1000C996 . D9C9 fxch st(1) 1000C998 . D950 E4 fst dword ptr [eax-1C] 1000C99B . D9CA fxch st(2) 1000C99D . D950 E8 fst dword ptr [eax-18] 1000C9A0 .^ 75 E3 jnz short 1000C985 1000C9A2 > A1 A0880510 mov eax, dword ptr [100588A0] 1000C9A7 . DDD9 fstp st(1) 1000C9A9 . 85C0 test eax, eax 1000C9AB . DDD8 fstp st 1000C9AD . DDD8 fstp st 1000C9AF . 74 1C je short 1000C9CD 1000C9B1 . DD00 fld qword ptr [eax] 1000C9B3 . 8B16 mov edx, dword ptr [esi] 1000C9B5 . 83EC 08 sub esp, 8 1000C9B8 . DD1C24 fstp qword ptr [esp] 1000C9BB . 52 push edx 1000C9BC . B9 48BA0E10 mov ecx, 100EBA48 1000C9C1 . E8 2ADEFFFF call 1000A7F0 1000C9C6 . 8BC8 mov ecx, eax 1000C9C8 . E8 1389FFFF call 100052E0 1000C9CD > 8B06 mov eax, dword ptr [esi] 1000C9CF . 50 push eax 1000C9D0 . B9 48BA0E10 mov ecx, 100EBA48 1000C9D5 . E8 16DEFFFF call 1000A7F0 1000C9DA . 8B48 14 mov ecx, dword ptr [eax+14] 1000C9DD . 3B0D C08D0510 cmp ecx, dword ptr [10058DC0] 1000C9E3 . 0F84 AA000000 je 1000CA93 1000C9E9 . 8B16 mov edx, dword ptr [esi] 1000C9EB . 52 push edx 1000C9EC . B9 48BA0E10 mov ecx, 100EBA48 1000C9F1 . E8 FADDFFFF call 1000A7F0 1000C9F6 . D980 980B0000 fld dword ptr [eax+B98] 1000C9FC . 8B0E mov ecx, dword ptr [esi] 1000C9FE . 05 980B0000 add eax, 0B98 1000CA03 . 8D0C49 lea ecx, dword ptr [ecx+ecx2] 1000CA06 . D91C8D 40EA0E>fstp dword ptr [ecx4+100EEA40] 1000CA0D . 8B16 mov edx, dword ptr [esi] 1000CA0F . 52 push edx 1000CA10 . B9 48BA0E10 mov ecx, 100EBA48 1000CA15 . E8 D6DDFFFF call 1000A7F0 1000CA1A . D980 9C0B0000 fld dword ptr [eax+B9C] 1000CA20 . 8B0E mov ecx, dword ptr [esi] 1000CA22 . 05 980B0000 add eax, 0B98 1000CA27 . 8D0C49 lea ecx, dword ptr [ecx+ecx2] 1000CA2A . D91C8D 44EA0E>fstp dword ptr [ecx4+100EEA44] 1000CA31 . 8B16 mov edx, dword ptr [esi] 1000CA33 . 52 push edx 1000CA34 . B9 48BA0E10 mov ecx, 100EBA48 1000CA39 . E8 B2DDFFFF call 1000A7F0 1000CA3E . D980 A00B0000 fld dword ptr [eax+BA0] 1000CA44 . 8B0E mov ecx, dword ptr [esi] 1000CA46 . 05 980B0000 add eax, 0B98 1000CA4B . 8D0C49 lea ecx, dword ptr [ecx+ecx2] 1000CA4E . D91C8D 48EA0E>fstp dword ptr [ecx4+100EEA48] 1000CA55 . 8B16 mov edx, dword ptr [esi] 1000CA57 . 52 push edx 1000CA58 . E8 73FBFFFF call 1000C5D0 1000CA5D . 83C4 04 add esp, 4 1000CA60 . 84C0 test al, al 1000CA62 . 75 09 jnz short 1000CA6D 1000CA64 . 5E pop esi 1000CA65 . 83C4 0C add esp, 0C 1000CA68 .^ E9 639AFFFF jmp 100064D0 1000CA6D > 8B06 mov eax, dword ptr [esi] 1000CA6F . D9EE fldz 1000CA71 . 8D0440 lea eax, dword ptr [eax+eax2] 1000CA74 . D91485 40EA0E>fst dword ptr [eax4+100EEA40] 1000CA7B . 8B06 mov eax, dword ptr [esi] 1000CA7D . 8D0C40 lea ecx, dword ptr [eax+eax2] 1000CA80 . D9148D 44EA0E>fst dword ptr [ecx4+100EEA44] 1000CA87 . 8B06 mov eax, dword ptr [esi] 1000CA89 . 8D1440 lea edx, dword ptr [eax+eax2] 1000CA8C . D91C95 48EA0E>fstp dword ptr [edx4+100EEA48] 1000CA93 > 8B06 mov eax, dword ptr [esi] 1000CA95 . 50 push eax 1000CA96 . B9 48BA0E10 mov ecx, 100EBA48 1000CA9B . E8 50DDFFFF call 1000A7F0 1000CAA0 . 83C0 50 add eax, 50 1000CAA3 . 50 push eax 1000CAA4 . 6A 00 push 0 1000CAA6 . E8 8596FFFF call 10006130 1000CAAB . 83C4 08 add esp, 8 1000CAAE . 5E pop esi 1000CAAF . 83C4 0C add esp, 0C 1000CAB2 .^ E9 199AFFFF jmp 100064D0 1000CAB7 > 5E pop esi 1000CAB8 . 83C4 0C add esp, 0C 1000CABB .^ E9 F099FFFF jmp 100064B0 1000CAC0 . E8 2B9AFFFF call 100064F0 1000CAC5 . A3 BC880510 mov dword ptr [100588BC], eax 1000CACA . E8 61FDFFFF call 1000C830 1000CACF . A1 BC880510 mov eax, dword ptr [100588BC] 1000CAD4 . FF25 A08A0510 jmp dword ptr [10058AA0] MyTest two Address is : 1000CA62 . /75 09 jnz short 1000CA6D or 1000C9E3 . /0F84 AA000000 je 1000CA93 modified to jmp ok 175Protect not Error Code & not CRC32 ERROR & Wall Hack Now restore the engine to make some of the plug-in available link

Last edited by 201724; 07-21-2011 at 08:20 AM.

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode